When establishing an enterprise IT risk management program, it is MOST important to:

When establishing an enterprise IT risk management program, it is MOST important to:
A . review alignment with the organization’s strategy.
B . understand the organization’s information security policy.
C . validate the organization’s data classification scheme.
D . report identified IT risk scenarios to senior management.

View Answer

Answer: A